$ rpki-client -vvf rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.mft File: hU_nJ1Ng0HgQr_umwo__I1gqIOs.mft (raw, json) Hash identifier: uulNECfJSn86it3/gcjZMXw5ns6edBCZBNSMNQwZhp4= Subject key identifier: 73:71:50:3C:CB:58:48:4A:F9:2F:56:B1:11:8B:94:FC:5D:14:8D:02 Authority key identifier: 85:4F:E7:27:53:60:D0:78:10:AF:FB:A6:C2:8F:FF:23:58:2A:20:EB Certificate issuer: /CN=A91958BE/serialNumber=854FE7275360D07810AFFBA6C28FFF23582A20EB Certificate serial: 01CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hU_nJ1Ng0HgQr_umwo__I1gqIOs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.mft Manifest number: 01CB Signing time: Sat 23 Aug 2025 02:59:49 +0000 Manifest this update: Sat 23 Aug 2025 02:59:49 +0000 Manifest next update: Sat 30 Aug 2025 02:59:49 +0000 Files and hashes: 1: hU_nJ1Ng0HgQr_umwo__I1gqIOs.crl (hash: bpLw4eI8fILqzgZtLBM2KhMWdWMkql4fJiOe+NHzbDU=) 2: 54FB2C8CD61711EEB983D919C4F9AE02.roa (hash: QVA6cnHl8Ur5a0kDBgQcj4pP7Ka7QThHbgUyDhuNztQ=) 3: 5576D030D61711EEB983D919C4F9AE02.roa (hash: El263VSWEusvqzTfH9aiwLLR8nJJvv9GT054yDKZA+0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.crl rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hU_nJ1Ng0HgQr_umwo__I1gqIOs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:59:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 463 (0x1cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91958BE, serialNumber=854FE7275360D07810AFFBA6C28FFF23582A20EB Validity Not Before: Aug 23 02:59:49 2025 GMT Not After : Aug 30 02:59:49 2025 GMT Subject: CN=68a92ea5-f750 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:69:0a:ae:94:e3:ef:d2:3c:e9:0a:f7:ee:ce: 35:d2:e2:99:c1:bf:79:62:a2:55:21:7f:9f:9d:6e: df:6f:88:61:79:83:50:de:e7:76:56:aa:56:92:43: b4:89:6d:fe:a1:da:ae:79:26:d2:44:09:82:39:92: c0:e5:c3:49:9e:dc:6d:74:24:be:e7:93:4d:96:1e: 8d:37:38:57:16:5e:99:fb:aa:9a:ee:4e:7f:a9:08: 0a:fc:6b:f8:bd:11:85:24:ab:e8:3d:af:9f:51:8f: 15:ae:56:7b:09:39:d6:91:ea:82:98:92:d1:2e:3c: f8:b3:df:0a:fa:6f:eb:5b:c2:5e:9e:26:fa:4f:a4: 98:3e:47:ad:e0:4c:f3:5d:47:cf:15:7e:a6:3c:17: 40:c0:11:a2:0e:10:cf:30:80:02:b1:05:de:26:38: 66:97:ac:6f:89:aa:a4:b6:19:e3:44:a5:8b:4e:8c: 9d:8f:0b:54:1a:71:b9:3e:5e:dc:65:83:af:9d:5a: 5e:8f:4f:d1:88:47:80:b0:5d:fb:fa:93:ed:96:06: 23:9e:ae:26:72:51:df:f9:40:45:24:cd:80:fb:a2: b1:41:b1:09:5f:96:80:2e:89:77:b5:22:cc:97:ce: 77:51:60:7b:87:94:69:c4:94:4b:a8:fc:50:86:87: 63:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:71:50:3C:CB:58:48:4A:F9:2F:56:B1:11:8B:94:FC:5D:14:8D:02 X509v3 Authority Key Identifier: keyid:85:4F:E7:27:53:60:D0:78:10:AF:FB:A6:C2:8F:FF:23:58:2A:20:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hU_nJ1Ng0HgQr_umwo__I1gqIOs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:ad:41:15:8c:0b:c5:0c:cd:df:a7:cc:a9:c5:f7:21:a1:96: 86:6e:54:41:9f:87:e8:8f:02:29:f3:dc:54:5d:d1:f9:fa:32: d3:5c:4a:da:bf:a4:29:f0:da:9b:e8:e6:8d:51:29:13:44:d6: 97:37:c2:b2:5b:0c:b3:ef:22:b3:8f:7c:79:c8:a7:f1:32:8e: 95:6d:44:47:b7:1e:5d:b7:6d:a2:77:1c:41:82:a2:08:52:ff: d6:cf:7f:c0:06:8f:e5:93:90:00:01:7d:d3:53:3c:c7:e3:e7: 13:ad:b1:51:ae:a6:ff:85:b5:2d:fd:1b:51:ad:59:2d:74:74: 36:a3:b1:d6:bf:ab:a4:0f:11:a1:9d:7c:0f:c6:32:6c:9c:54: ed:58:d4:57:27:7e:f4:1c:de:ba:9a:dc:fd:f6:ef:f1:46:1e: 2e:15:09:6a:11:cf:fa:23:db:b8:8b:0c:67:e6:09:4e:f8:a9: bd:c1:0d:59:7b:98:e7:b0:f2:a7:e9:80:fb:f0:a8:9a:07:9d: cc:aa:be:8d:1c:2b:be:8c:fe:61:b4:72:02:2e:00:85:58:98: 28:89:d0:0e:08:08:09:18:7f:35:1a:74:57:71:1f:01:e9:da: c2:ac:c8:76:18:b8:96:66:ae:a6:db:c0:c7:9a:27:39:cb:93: e3:50:8e:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAc8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU4QkUxMTAvBgNVBAUTKDg1NEZFNzI3NTM2MEQwNzgxMEFGRkJBNkMyOEZGRjIz NTgyQTIwRUIwHhcNMjUwODIzMDI1OTQ5WhcNMjUwODMwMDI1OTQ5WjAYMRYwFAYD VQQDEw02OGE5MmVhNS1mNzUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyWkKrpTj79I86Qr37s410uKZwb95YqJVIX+fnW7fb4hheYNQ3ud2VqpWkkO0 iW3+odqueSbSRAmCOZLA5cNJntxtdCS+55NNlh6NNzhXFl6Z+6qa7k5/qQgK/Gv4 vRGFJKvoPa+fUY8VrlZ7CTnWkeqCmJLRLjz4s98K+m/rW8Jenib6T6SYPket4Ezz XUfPFX6mPBdAwBGiDhDPMIACsQXeJjhml6xviaqkthnjRKWLToydjwtUGnG5Pl7c ZYOvnVpej0/RiEeAsF37+pPtlgYjnq4mclHf+UBFJM2A+6KxQbEJX5aALol3tSLM l853UWB7h5RpxJRLqPxQhodjwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHNxUDzL WEhK+S9WsRGLlPxdFI0CMB8GA1UdIwQYMBaAFIVP5ydTYNB4EK/7psKP/yNYKiDr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NThCRS83QzdGQjJGRUMy MTkxMUVEODAyNTZGNEVDNEY5QUUwMi9oVV9uSjFOZzBIZ1FyX3Vtd29fX0kxZ3FJ T3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hVX25KMU5nMEhnUXJfdW13b19fSTFncUlPcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NThCRS83QzdGQjJGRUMyMTkxMUVEODAyNTZGNEVDNEY5QUUwMi9oVV9uSjFOZzBI Z1FyX3Vtd29fX0kxZ3FJT3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjrUEVjAvFDM3fp8ypxfchoZaGblRBn4fojwIp89xUXdH5+jLTXEra v6Qp8Nqb6OaNUSkTRNaXN8KyWwyz7yKzj3x5yKfxMo6VbURHtx5dt22idxxBgqII Uv/Wz3/ABo/lk5AAAX3TUzzH4+cTrbFRrqb/hbUt/RtRrVktdHQ2o7HWv6ukDxGh nXwPxjJsnFTtWNRXJ370HN66mtz99u/xRh4uFQlqEc/6I9u4iwxn5glO+Km9wQ1Z e5jnsPKn6YD78KiaB53Mqr6NHCu+jP5htHICLgCFWJgoidAOCAgJGH81GnRXcR8B 6drCrMh2GLiWZq6m28DHmic5y5PjUI62 -----END CERTIFICATE-----Generated at Sat Aug 23 18:01:57 2025 by rpki-client